Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Latest Videos

From Confidence to Competence: Overcoming Secrets Management Challenges

Check out this insightful discussion on the realities of secrets management, featuring Grace Law, Principal Security Engineer in Application Security at a large insurance company, and Chris Smith, Product Marketing Director for Machine Identities & DevSecOps at CyberArk. Together, they’ll share real-world experiences and strategies for overcoming the most pressing challenges in secrets management and security.

How ARMO Reduced Secrets Exposure with GitGuardian

ARMO, a cloud-native security company, has been able to strengthen its security posture and ensure the protection of its client's data, thanks to GitGuardian. The company's CTO and co-founder, Ben Hirschberg, shared his experience of how GitGuardian has helped them close a significant security gap and instill a culture of security awareness throughout the organization.

Customize Your Team's Remediation Messages In ggshield

We are very proud to announce that you can now easily provide your own custom remediation messages in ggshield, the GitGuardian CLI. Earlier versions of ggshield offered the same general remediation advice to all users if a secret was detected when using git hooks for automated scanning.

GitGuardian's FP Remover Dramatically Reduces False Positive In Scans

Do you hate false positives in your secrets scan results? We do too. GitGuardian has introduced a whole new approach to eliminating false positives, eliminating them by around 50% so far. And we are just getting started! GitGuardian's Machine Learning experts and Secret Detection team have created "FP Remover", a new in-house machine learning model that significantly reduces false positives by understanding code context and semantics while enforcing security and privacy best practices.

Dependency Confusion Vulnerability Exposure Protections In GitGuardian SCA

Supply chain security can be a struggle. The GitGuardian Source Composition Analysis module scans your project's dependencies, comparing them against public repos. If it finds any matches between your internal packages and public ones, it flags them as potential dependency confusion risks.

GitGuardian SCA Makes It Easy To Manage SBOMs

GitGuardian SCA makes it easier than ever to build and group your SBOMs while staying up to date with any changes. Our Software Composition Analysis tool, better known as GitGuardian SCA, lets you instantly download up-to-date Software Bills of Material with the touch of a button. No more guessing if things have changed between the last version someone else generated and now. You'll never need to ask your developers to generate a fresh SBOM again.

Manage Open Source Dependency Licenses Easier With GitGuardian SCA

Get better insight into your third-party licenses and easily stay on top of any changes with GitGuardian Software Composition Analysis (SCA), you can now get a thorough view of all the licenses used by your applications' dependencies from a single view. In your dashboard under the SCA Dependencies view you can easily filter by each particular license used by the components in your applications. Easily check for any unexpected entries from the convenience of the GitGuardian workspace.

Introducing GitGuardian Software Composition Analysis (SCA)

Introducing GitGuardian Software Composition Analysis, further expanding the capabilities of our code security platform. You have long known GitGuardian for secrets detection and remediation, honeytokens, and IaC scanning. Now, with GitGuardian SCA, you can effortlessly scan your applications to detect known vulnerabilities introduced through both Direct & Transitive dependencies. The platform will automatically prioritize incidents depending on their context and help developers find the best path to remediating any issues.

Install ggshield On macOS Using Signed .pkg Files

MacOS users can now opt to install ggshield using our new signed packages. Installing ggshield, the GitGuardian CLI is a very quick process, but traditionally has required use of python's pip or homebrew on a macOS system. With the release of ggshield 1.27.0 we are now proud to offer signed DOT P G K files, making it possible to easily distribute ggshield to your team and leverage the official Mac Installer. Since it is officially signed, once downloaded, it just takes a couple of clicks to get it installed.

Detect Secrets In Microsoft Teams With GitGuardian

GitGuardian can now help you find and remediate secrets exposed in your Microsoft Teams channels. We have extended the real-time detection capability of our secrets detection platform to include the popular communications tooling to help teams better fight secrets sprawl throughout their organizations Once integrated, whenever a plaintext credential is accidentally posted to Teams messages, GitGuardian will create an alert and the incident will appear in your GitGuardian dashboard, allowing you to remediate it like any other leaked secret.